• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Possible to get email alert on authentication failures?

Scheduled Pinned Locked Moved General pfSense Questions
5 Posts 3 Posters 712 Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • N
    NGUSER6947
    last edited by NGUSER6947 May 24, 2021, 9:13 PM May 24, 2021, 9:12 PM

    Is there a way to get an email alert if there's an authentication error (such as someone trying to brute-force my admin password)?

    I know you can set up alerts through gmail but it's not clear what actually constitutes an 'alert' that will go out.

    Thanks!

    K G 2 Replies Last reply May 25, 2021, 12:30 AM Reply Quote 0
    • K
      KOM @NGUSER6947
      last edited by May 25, 2021, 12:30 AM

      @nguser6947 You have people on your LAN trying to guess your pfSense login? WebGUI should never be exposed to WAN. Use a VPN to manage it remotely. If local, pfSense already has built-in login protection under System - Advanced - Admin Access - Login Protection.

      1 Reply Last reply Reply Quote 0
      • G
        Gertjan @NGUSER6947
        last edited by Gertjan May 25, 2021, 7:13 AM May 25, 2021, 7:13 AM

        @nguser6947 said in Possible to get email alert on authentication failures?:

        I know you can set up alerts through gmail but ....

        And when the attack arrives, you'll brut-mail-bomb gmail with these notifications.
        They might not like that.

        If even the LAN is untrusted, just leave it 'not connected' and use OPT1,2,3 etc for LAN access, and firewall pfSense GUI/SSH connections. No more need for mails as the access is 'impossible'.

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        N 1 Reply Last reply May 25, 2021, 9:52 AM Reply Quote 0
        • N
          NGUSER6947 @Gertjan
          last edited by May 25, 2021, 9:52 AM

          Thank you for the input. Of course, you're correct that there shouldn't be any access attempts, as I do not have remote access enabled.

          K 1 Reply Last reply May 25, 2021, 12:16 PM Reply Quote 0
          • K
            KOM @NGUSER6947
            last edited by May 25, 2021, 12:16 PM

            @nguser6947 You can also create some LAN firewall rules to prevent access to WebGUI by anyone except your workstation.

            1 Reply Last reply Reply Quote 0
            5 out of 5
            • First post
              5/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received